Our reputation is built on the skills and successes of our employees.

Computer Forensic & Intrusion Analyst (Journeyman)

Learn more about this opportunity below: 7222-DC3II - Computer Forensic & Intrusion Analyst (Journeyman)

Clearance: TS/SCI Cl

Location: Chantilly, VA

Required Skills:

• Strong ability to conduct Incident Report Analysis on incidents reported under applicable DFARS procedures

• Strong familiarity with threats and vulnerabilities to supply chain, and a deep understanding of the damage assessment process, specifically regarding data compromised as a result of adversary intrusions into contractor networks

• Strong or Intermediate ability to apply formal intelligence analysis methods, including the ability to aggregate multiple datasets into clear and cohesive intelligence reporting. Candidate must be able to make confidence-based assessments based on technical analysis of data to include (but not limited to) network traffic, multi-source data, malware and system forensic analysis.

• Must be able to proactively engage and develop relationships with intrusion set subject matter experts and analyst counterparts across the USIC and LE communities, working individually or with small teams (this effort may require working with other USAF-sponsored personnel to de-conflict similar lines of effort).

• Familiarity with DoD Damage Assessment Management Office (DAMO) Program guiding documents and mission (DFARS Procedures, Guidance, and Information (PGI) 204.7303-4 DoD damage assessment activities)

• Ability to correlate data and research using open source repositories (ex. VirusTotal, Domaintools, Threatminer, etc.)

• A background in USAF weapon systems (avionics, software/firmware design for weapon systems) is highly desired but not required

• Background supporting USAF or DoD intelligence analysis components

• Existing Subject Matter Expert of Advanced Persistent Threat activity

• Formal training as an intelligence analyst in any discipline – graduate of US Govt intelligence analysis course: CAC, IBC, Kent School, IC 101, Analysis 101, Army, Navy, Air Force, etc

• Certifications (any): CISSP, CEH, Security+, SANS certification(s), Network+, CCNA

• Advanced Data Visualization proficiency leveraging COTS/GOTS tools

• Any type of Cyber related Law Enforcement or Counterintelligence experience

• Analyst experience in a Federal Cyber Center or corporate computer incident response team



The selected candidate will serve as a Cyber Threat Analyst supporting the Department of Defense Cyber Crime Center (DC3) and the National Cyber Investigative Joint Task Force (NCIJTF) in Chantilly, VA. The candidate will use their experience, knowledge, and analytical skills on behalf of the Air Force Cyber Resiliency of Weapons Systems (AF CROWS) effort, and will produce analytical products support the AF cyber campaign plan to design, operate, and sustain AF systems and capabilities with security and resiliency.


The candidate will perform research in a team environment focused on cyber threats to technologies, capabilities or weapons systems, by analyzing information from multiple datasets and assessing the overall impact for system owners or users. The candidate may also contribute to analysis of cyber threat actors/activity, co-author and/or review intelligence products by applying technical expertise, or make recommendations for new solutions to cyber analytical issues as needed. He/she must be able to represent DC3/CROWS equities to NCIJTF, as he/she will be the sole CROWS-sponsored individual onsite. Additionally, the candidate will be expected to collaborate with analysts from DC3/AG, task force analysts and CROWS stakeholders outside of NCIJTF or DC3, including various other Intelligence Community agencies, and other Defense Criminal Investigative Organizations (AFOSI, CID, DCIS) on a regular basis. Successful candidates will rely heavily on experience serving in past intelligence analyst roles in DoD, Computer Network Operations, Law Enforcement/Counterintelligence, or Intelligence Community mission focused organizations. The selected candidate should be comfortable writing documents up to 30 pages in length.


Only candidates with a current TS/SCI clearance will be considered.


Candidates with CI Poly preferred, but not necessary to start.


Alliant LCAT Description:

Possesses and applies expertise on multiple complex work assignments. Assignments may be broad in nature, requiring originality and innovation in determining how to accomplish tasks. Operates with appreciable latitude in developing methodology and presenting solutions to problems. Contributes to deliverables and performance metrics where applicable.


Suggested Qualifications:

13 years of professional experience without a degree; or 5 years of professional experience with a Bachelors degree from an accredited college in a related discipline, or equivalent experience/combined education; or 3 years of professional experience with a related Masters degree; or no experience required with a related PhD or JD. Consideration should always be given for the level of specific domain expertise.


Job Application

Fill out our application below and we will contact you at our earliest convenience.

Place Resume Here

Thanks for submitting!